I think I got the idea to.

organic
No comments yet

 
Kooyman: So you can create a snapshot and write to it

Paduano: But since it COW it won’t modify the original

Hattori: Yep, I had 3 XP VMs that all started from a master copy

Fansher: No im saying I had to reinstall everything on the new one

Wademan: Upgraded the OS, moved from Xen to KVM, upgraded php apache and mysql

Tork: So you are copying the dataset from an old server to a new server that has 5.5 on it?

Chevres: Taking the opportunity to upgrade everything

Jungck: Xen always gets a bad rap :

Bolender: Pedward: sorry, here it is http://pastie.org/10424676

Kalamaras: Linode switched to KvM

Olvedo: Jmss: there isn’t anything in that profile that should cause tcp problems, but perhaps the enforcing mode caused some ancillary problem.

Dockendorf: Network tcp, #allow access to tcp

Kutch: Without inspecting the system logs, it’s tough to pinpoint

Ivey: But, if apparmor is set to complain mode and mysql works, then hooray

Yark: Haven’t seen that in a while

Woodert: Maybe I should uninstall apparmor?

Mcilwaine: I won’t tell you one way or the other, too many zealots on both sides :

Cotham: I prefer without, but I don’t store any sensitive data

Isham: Maybe I got it down? I’ll start it.

Briley: I regularly run as root too! ;

Trucchio: Pedward: i do too, tbh

Mielnicki: I can sudo without a p***word!

Desmarais: There no point in sudo then!

Welchel: Any box with sudo i just use sudo /bin/bash

Gruner: Except it prevents really boneheaded moves

Moatz: I try not to make boneheaded moves

Tannahill: How do I temporarily revert the complaint to enforcing to double check it was the issue?

Genova: Wish there was a sudo for drop tables

Chhabra: I borked my partition table once try to juggle space and convert everything to LVM

Porris: BlaDe: there is, just use a restricted account

Vandale: Old fdisk had a smaller default cylinder gap between partitions

Carillion: I had to hexdump and search for the magic number to find the beginning of the partition

Visocsky: BlaDe: allow all but DROP TABLE

Sea: Still works with enforce

Floore: DROPEnable databases, tables, and views to be dropped. Levels: Global, database, table.

Schwing: Maybe it was the bind address only?

Gualtieri: Jmss: yeah, I suspect apparmor got agitated

Quammen: Jmss: most of the time it is

Ulberg: I’ll reboot, to see if there is not temp setting

Schoenle: Jmss: I didn’t see anything in the apparmor profile that could be that restrictive

Bosarge: It simply said ‘network tcp’, which allows all TCP access

Peckham: But, when you trigger these protective services, they tend to lock everything down

Scarpino: McAffee has a bastard version of SELinux that does the same thing

Tinner: You tickle the right spot and MySQL no longer works, period

Pallet: MontgoDB1: you around?

Brunscheen: Yes, it works with localhost, 127.0.0.1 and 192.168.1.13 after reboot

Elshant: So it was the bind address

Weelborg: Thank you all, it’s been a nice debugging session

Deason: How could AA possibly know packets coming in to 3306 on eg eth0 originated from a local process. still puzzled.

Wadlinger: Shost: I was just gonna say beehive was *****ed, but it’s back now and I see you

Althiser: I think I got the idea to modify bind-address from here https://help.ubuntu.com/community/ApacheMySQLPHP or here https://help.ubuntu.com/lts/serverguide/mysql.html